Alojapro Alojapro Widget — known CVE vulnerabilities
Every CVE whose affected-product data names Alojapro Alojapro Widget, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (1)
- CVE-2021-24530 — CVSS 4.8 (medium): The Alojapro Widget WordPress plugin through 1.1.15 doesn't properly sanitise its Custom CSS settings, allowing high privilege users to…